Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NRbo0a5DX139DB9kiFROyKfY370.roa
File: NRbo0a5DX139DB9kiFROyKfY370.roa (raw, json)
Hash identifier: 7e10hQkIPrw4D75o/007TKkeMc7ZSasZ/wdPcWsKW94=
Subject key identifier: 35:16:E8:D1:AE:43:5F:5D:FD:0C:1F:64:88:54:4E:C8:A7:D8:DF:BD
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FAA
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NRbo0a5DX139DB9kiFROyKfY370.roa
Signing time: Wed 21 Sep 2022 09:38:17 +0000
ROA not before: Wed 21 Sep 2022 09:38:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.193.216.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8106 (0x1faa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 21 09:38:17 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3516E8D1AE435F5DFD0C1F6488544EC8A7D8DFBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:e4:95:28:05:03:ee:c2:44:9d:11:b0:08:44:
fb:be:14:fb:5f:58:ff:1f:ca:b4:50:31:43:56:71:
39:ad:ff:47:94:3c:63:27:1e:a4:55:8f:f8:e5:49:
73:c6:43:27:ba:1f:95:b2:26:a1:e7:6c:e2:da:80:
54:f3:a8:db:1a:2f:50:ed:40:a2:5b:97:03:6d:c7:
39:39:71:75:45:e0:0d:42:78:d3:36:32:3f:03:06:
80:93:b2:a4:2f:ea:4d:70:31:82:ff:a7:5d:65:54:
56:b6:ed:3a:72:e1:d0:61:1a:8a:ca:d8:1a:98:12:
de:68:70:41:cf:20:87:aa:72:ce:c8:3d:34:e3:ce:
da:d9:c6:f2:96:1f:44:2d:b4:fb:8d:0f:ab:39:5a:
27:74:5e:b3:e8:d2:2f:cd:5b:ee:6b:26:66:37:42:
ca:d0:81:54:e9:3d:5d:ea:c7:7e:a4:a9:f0:36:30:
4a:fd:bc:bf:82:9f:3d:2f:75:ec:a6:90:81:c2:5b:
16:e7:21:c5:03:39:f3:fb:d7:1b:6a:0a:1d:03:70:
ed:d2:5a:72:9a:c6:cc:42:bb:e4:67:bc:23:1e:5d:
ab:3a:0c:cc:bd:45:bd:93:eb:65:40:c9:b8:5c:d7:
e1:2e:21:15:c2:71:2d:17:3c:7c:f6:58:69:f2:80:
ca:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:16:E8:D1:AE:43:5F:5D:FD:0C:1F:64:88:54:4E:C8:A7:D8:DF:BD
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NRbo0a5DX139DB9kiFROyKfY370.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.216.0/23
Signature Algorithm: sha256WithRSAEncryption
28:9c:75:af:2b:69:3b:46:b1:65:b9:9d:f2:6e:a2:9c:73:09:
86:b3:90:b5:4f:f8:d2:63:bb:5b:38:34:2b:16:15:e7:73:cb:
26:20:7f:0c:d2:40:41:24:b3:32:b6:bd:89:e6:40:7c:43:49:
f9:75:1b:61:8b:8e:98:92:5e:76:49:31:ae:d4:ea:25:62:71:
e6:6a:5c:17:77:50:54:b2:ef:f8:5e:45:eb:92:23:49:a6:5d:
2a:92:84:a5:d2:59:f9:b2:62:a5:40:e7:21:e3:84:85:ec:d4:
6b:40:cd:cd:8e:12:01:91:fe:99:b1:a9:ad:06:52:bb:ae:99:
43:81:12:f0:b0:5c:db:a0:e1:ac:bd:00:c2:0c:48:6f:2b:8b:
e6:ea:d3:ca:db:38:2f:ea:4f:3d:c7:3f:12:dc:3c:17:a2:51:
86:a9:ad:68:06:4e:aa:b2:69:9e:bd:f1:85:ca:7e:31:de:f1:
42:65:3b:9b:09:7c:74:32:bd:5d:b9:6c:b0:2b:c6:8c:29:31:
b1:fc:56:a6:e7:04:f4:30:9e:44:d3:0d:75:96:a2:08:a0:8f:
92:9d:19:f6:ad:67:b3:f4:81:f4:b9:22:a4:3b:2b:0c:55:a5:
24:4b:21:42:97:c9:a5:f1:9b:96:9a:cd:b9:c0:fd:1e:21:9b:
a9:3e:6d:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:29 2024 by rpki-client on console-ams.rpki-client.org